package Demo603;

import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;

public class UserDao {
    private static DbUntil dbUntil = new DbUntil();
    Connection connection = dbUntil.getCon();

    public UserDao() throws SQLException, ClassNotFoundException {
    }

    public User findUser(String username, String password) throws SQLException{
        String sql = "select * from user where username = ? and password = ?";
        PreparedStatement preparedStatement = connection.prepareStatement(sql);

        preparedStatement.setString(1,username);
        preparedStatement.setString(2,password);

        ResultSet resultSet = preparedStatement.executeQuery();
        User user = new User();
        if (resultSet.next()){
            int id = resultSet.getInt("id");
            String name = resultSet.getString("username");
            String pwd = resultSet.getString("password");
            user = new User(id,name,pwd);

            user.setId(id);
            user.setUsername(name);
            user.setPassword(pwd);
        }
        return user;
    }
}
